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1 A study of initiaiization in Linux and OpenBSD 
Catherine Dodge, Cynthia Irvine, Thuy Nguyen 

April 2005 ACM SIGOPS Operating Systems Review, volume 39 issue 2 
Publisher: ACM Press 

Full text available: ^ pdf{2.02 MS) Additional Information: full citation, abstract, references, index terms 

The code that initializes a system can be notoriously difficult to understand. In secure 
systems, initialization is critical for establishing a starting state that is secure. This paper 
explores two architectures used for bringing an operating system to its initial state, once 
the operating system gains control from the boot loader. Specifically, the ways in which 
the OpenBSD and Linux operating systems handle initialization are dissected. 
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David Molnar, David Wagner 

October 2004 Proceedings of the 11th ACM conference on Computer and 



communications security 
Publisher: ACM Press 

Full text available: ^i?df(.241.A§.KB.) Additional Information: fujicitatjon, abstract, references jndex.terrns 

We expose privacy issues related to Radio Frequency Identification (RFID) in libraries, 
describe current deployments, and suggest novel architectures for library RFID. Libraries 
are a fast growing application of RFID; the technology promises to relieve repetitive strain 
injury, speed patron self-checkout, and make possible comprehensive inventory. Unlike 
supply-chain RFID, library RFID requires item-level tagging, thereby raising immediate 
patron privacy issues. Current conventional wisdom su ... 

Keywords: RFID, privacy, private authentication, security 
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^ October 1976 ACM SIGARCH Computer Architecture News, volume 5 issue 4 
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Full text available: ^pdftlJAMBi Additional Information: Ml.citatjo!L references, dftngs 
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^ David A. Patterson 

>^ September 1988 ACM SIGARCH Computer Architecture News, Volume 16 issue 4 
Publisher: ACM Press 

Full text available: ffipdfU j*3.M3i Additional Information: MLcitatjoo, index terms 



6 Fauit Tolerant Operating Systems H 
|& Peter J. Denning 

^ December 1976 ACM Computing Surveys (CSUR), volume 8 issue 4 
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Full text available: ^j)dft2.69.MBl Additional Information: MLeitation, references, .cjtjp.gs, indexierms 



7 Formal Models for Computer Security Q 
^ Carl E. Landwehr 

^ September 1981 ACM Computing Surveys (CSUR), Volume 13 issue 3 
Publisher: ACM Press 

Full text available: l ^| pdf(2.90 M3) Additional Information: full citation, references, citings , index terms 



8 Shake 'em, but don't crack 'em: Shake them up!: a movement-based pairing protocol H 

M for CPU-constrained devices 
^ Claude Castelluccia, Pars Mutaf 

June 2005 Proceedings of the 3rd international conference on Mobile systems, 
applications, and services MobiSys '05 

Publisher: ACM Press 

Full text available: pdfl295.G2 KB) Additional Information: full citation, abstract, references 

This paper presents a new pairing protocol that allows two CPU-constrained wireless 
devices Alice and Bob to establish a shared secret at a very low cost. To our knowledge, 
this is the first software pairing scheme that does not rely on expensive public-key 
cryptography, out-of-band channels (such as a keyboard or a display) or specific 
hardware, making it inexpensive and suitable for CPU-constrained devices such as 
sensors. 

In the described protocol, Alice can send the secre ... 
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Jon C. Strauss, Kenneth J. Thurber 
March 1977 ACM SIGARCH Computer Architecture News , Proceedings of the 4th 



annual symposium on Computer architecture ISCA '77, volume 5 issue 7 
Publisher: ACM Press 

Full text available: *f| |pd -7513.31 K3) Additional Information: full citation, abstract, references , index terms 
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The real-time command and control environments characteristic of tactical military 
systems and industrial process control systems place unique and conflicting design 
requirements on a support computer system. These requirements include fast context 
switching, selective protection of programs and their files, controlled sharing of program 
and files, high processing speed, flexible, yet fast priority structure for interrupts and 
program execution, flexible high-speed I/O and flexible intercom ... 

1 0 Some formal language aspects of MARY 
Mark Rain 

July 1972 ALGOL Bulletin, issue 34 
Publisher: Computer History Museum 

Full text available: ^j)dfQ..51JW3i Additional Information: MsMtioCL Index j&rrns 



11 ATutoriai.gn.AiSoi6 
Andrew S. Tanenbaum 

June 1976 ACM Computing Surveys (CSUR), Volume 8 issue 2 
Publisher: ACM Press 

Full text available: ^i)df(2,92.M3i Additional Information: MlcltatjorL references, citjngs, index Jerms 



12 Costprgfije^ Q 
^ Richard E. Smith 

^ February 2001 ACM Transactions on Information and System Security (TISSEC), volume 

4 Issue 1 

Publisher: ACM Press 

r- .14. + i ui 0i -uv^crou— \ Additional Information: full citation, abstract, references , citings , index 

Full text available: mj>d:-;i6&.98 Kb) ; ^ 

lerms 

The Logical Coprocessing Kernel (LOCK) began as a research project to stretch the state 
of the art in secure computing by trying to meet or even exceed the "Al" requirements of 
the Trusted Computer System Evaluation Criteria (TCSEC). Over the span os seven years, 
the project was transformed into an effort to develop and deploy a product: the Standard 
Mail Guard (SMG). Since the project took place under a US government contract, the 
development team needed to maintain detailed re ... 

Keywords: LOCK (Logical Coprocessing Kernel), security kernels 
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^ Xiaotong Zhuang, Tao Zhang, Santosh Pande 

October 2004 ACM SIGPLAN Notices , ACM SIGOPS Operating Systems Review , ACM 
SIGARCH Computer Architecture News , Proceedings of the 11th 
international conference on Architectural support for programming 
languages and operating systems ASPLOS-XI, volume 39 , 38 , 32 issue 11,5,5 

Publisher: ACM Press 

Additional Information: full citation , abstract, references, citings. Index 



Full text available: fSpdf(216.31 K3) 

^ terms 

XOM-based secure processor has recently been introduced as a mechanism to provide 
copy and tamper resistant execution. XOM provides support for encryption/decryption and 
integrity checking. However, neither XOM nor any other current approach adequately 
addresses the problem of information leakage via the address bus. This paper shows that 
without address bus protection, the XOM model is severely crippled. Two realistic attacks 
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are shown and experiments show that 70% of the code might be cracked ... 
Keywords: address bus leakage protection, secure processor 
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^ December 1988 ACM SIGPLAN Notices, Volume 23 issue 12 
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Full text available: ^pdf{ r 769,63.K3) Additional Information: MLcitatj.Q.n., citings, Index terms. 



15 Specification and analysis of the SNR high-speed transport protocol 
Gilbert M. Lundy, H. Alphan Tipici 

October 1994 IEEE/ACM Transactions on Networking (TON), volume 2 issue 5 
Publisher: IEEE Press 
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16 Authentic 

^ Benny Pinkas, Tomas Sander 

November 2002 Proceedings of the 9th ACM conference on Computer and 

communications security 
Publisher: ACM Press 

Additional Information: full citation, abstract, references, citings, index 



Full text available: TO pdf(216.72 K3) 

terms 

The use of passwords is a major point of vulnerability in computer security, as passwords 
are often easy to guess by automated programs running dictionary attacks. Passwords 
remain the most widely used authentication method despite their well-known security 
weaknesses. User authentication is clearly a practical problem. From the perspective of a 
service provider this problem needs to be solved within real-world constraints such as the 
available hardware and software infrastructures. From a user' ... 

17 Virtuaj..machine.m Q 
hardware 



David Lie, Chandramohan A. Thekkath, Mark Horowitz 

October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 

principles 
Publisher: ACM Press 

Additional Information: full citation, abstract, references, citings, index 



Full text available: W pdf(280.87 K3) 

terms 

Recently, there has been considerable interest in providing "trusted computing platforms" 
using hardware^— ~TCPA and Palladium being the most publicly visible examples. In this 
paper we discuss our experience with building such a platform using a traditional time- 
sharing operating system executing on XOM~— ~a processor architecture that provides 
copy protection and tamper-resistance functions. In XOM, only the processor is trusted; 
main memory and the operating system are not trusted. Our opera ... 

Keywords: XOM, XOMOS, untrusted operating systems 
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A nested transaction mode! for multilevel secure database management systems Q 
Elisa Bertino, Barbara Catania, Elena Ferrari 

November 2001 ACM Transactions on Information and System Security (TISSEC), 

Volume 4 Issue 4 

Publisher: ACM Press 

Full text available: fp pd if 550. 96 KB) Additional Information: full citation, abstract, references, index terras 



This article presents an approach to concurrency control for transactions in a Multilevel 
Secure Database Management System (MLS/DBMS). The major problem is that 
concurrency control mechanisms used in traditional DBMSs are not adequate in a 
MLS/DBMS, since they may be exploited to establish covert channels. The approach 
presented in this article, which uses single-version data items, is based on the use of 
nested transactions, application-level recovery, and notification-based locking protocols. 



Keywords: Nested transactions, concurrency control, covert channels, multilevel secure 
database management systems 
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Taeho Kgil, Laura Falk, Trevor Mudge 
March 2005 ACM SIGARCH Computer Architecture News, Volume 33 issue l 

Publisher: ACM Press 

Full text available: ^pdf{2^52 K3j Additional Information: Miration, abstract references, index tejxns 

The increasing need for security has caused system designers to consider placing some 
security support directly at the hardware level. In fact, this is starting to emerge as an 
important consideration in processor design, because the performance overhead of 
supporting security in hardware is usually significantly lower than a complete software 
solution. In this paper, we investigate integrating some security support into hardware. 
We show that security support can be added at some acceptable cos ... 
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Glenn S. Benson, Ian F. Akyildiz, William F. Appelbe 

August 1990 ACM Transactions on Computer Systems (TOCS), Volume 8 issue 3 
Publisher: ACM Press 

i- * *. ui f> joo i-? im~v Additional Information: full citation, abstract, references, citings, Index 

Full text available: tm odr{2. 1 7 Ms) J ' ' 

6623 terms, review 

One way to show that a system is not secure is to demonstrate that a malicious or 
mistake-prone user or program can break security by causing the system to reach a 
nonsecure state. A fundamental aspect of a security model is a proof that validates that 
every state reachable from a secure initial state is secure. A sequential security model 
assumes that every command that acts as a state transition executes sequentially, while 
a concurrent security model assumes that multiple commands execut ... 

Keywords: access control, concurrency control, distributed system security, operating 
system security, protection model 
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